csrf missing in flatpages
k1000 opened this issue · comments
in flatpages/view.py
FIX
needs import:
"from django.views.decorators.csrf import csrf_protect"
and decorate "multilingual_flatpage" view with "@csrf_protect"
other fix is to use the csrf middlewares. if anything happens to the flatpages app in mlng, it'll be deleted.
it's a way how it work in original flatpages in the latest trunk. So I think its expected solution.
yes but flatpages in MLNG is just another thing I have to maintain that does not really serve a core purpose.
anyway thank you for sharing :)